By telling us what you think of this job, we can help find jobs that match your interests. If you want to see more jobs like this, click on the smiley face. Or if this
job isn't what you are looking for, click the frowny face. Learn More...

Job Description

The Business Information Security Officer (BISO) functions as the security leader with their area of responsibility. This role will have dual reporting structure, one reporting to the AoR and one into the Information Security Program Office and is responsible for establishing and driving a business specific Information Security program aligned with the business area risks and the Company Information Security Program. The BISO serves as the trusted advisor, both to the business and to the CISO. This role will liaise between the business and Company Information Security (AIS), keeping clear lines of communication including but not limited to; transparency to the business on upcoming security initiatives, reporting of security risks to the CISO and appropriate committees, as well as a key player in the information security incident response process, from identifying impact to the business and to consumers, to helping shape remediation, and developing external and internal message points. In addition, this role will ensure business compliance with the Information Security Policy and Standards while continuously monitoring and reporting on risks and documented exceptions.

Responsibilities:

Establish a documented Information Security Program and supporting strategy for the area of responsibility (AOR)

Ensure program is aligned with the AIS Information Security Program, Policies and Standards

Ensure inclusion of all applicable regulatory, legal and contractual obligations

Leverage the Enterprise and AOR specific Information Security Risk Assessments to establish and monitor the program

Update the program annually

AORs:

Information Security Risk Management

Policy Compliance

Access Management

Data Protection

Education and Awareness

Partnership

Provide input into the Company Information Security Program

Review and provide input into the Information Security Policy and Standards

Ensure clear lines of communication between AOR and the Chief Information Security Officer

Provide reporting on the state and efficacy of security controls for their projects and platforms

Qualifications

This company profile was created by AfterCollege and is about Request Technology - Anthony Honquest. This page is not endorsed by or affiliated with Request Technology - Anthony Honquest. For
questions regarding company profiles, please email: care@aftercollege.com.